Error "Unable to load certificate at com.ca.itechnology.iclient.iTechCertificateReader.loadP12" when trying to load in IT PAM

book

Article ID: 186048

calendar_today

Updated On:

Products

CA Process Automation Base

Issue/Introduction

When trying to log in ITPAM it fails with the error  "Invalid user/password"

The eiam.javasdk.log shows the following error:

ERROR 2020-03-09 13:47:28,374 [http-pam%2F10.0.10.27-8020-4] [com.ca.eiam.SafeCertificateReader] SafeCertificateReader::readP12: failed

com.ca.itechnology.iclient.IclException: Unable to load certificate
at com.ca.itechnology.iclient.iTechCertificateReader.loadP12(iTechCertificateReader.java:117)
..
Caused by: java.io.IOException: PKCS12 key store mac invalid - wrong password or corrupted file.
at org.bouncycastle.jcajce.provider.ProvPKCS12$PKCS12KeyStoreSpi.engineLoad(Unknown Source)
at java.security.KeyStore.load(KeyStore.java:1445)
at com.ca.itechnology.iclient.iTechCertificateReader.loadP12(iTechCertificateReader.java:68)
... 46 more

Cause

This issue is caused by a missing or invalid P12 keystore file for the EEM server integration with ITPAM

Environment

Release : 4.3

Component : Process Automation

Resolution


The approach to solve this issue is to run the ITPAM installer and use it for reconfigure and re register the EEM.

Additional Information

CA PROCESS AUTOMATION - 04.3.05 Install Process